Reading the docs got me more confused than I was before I started reading them. Thanks for this simple and insightful explanation!

John, I watched this video 4 months ago and I returned to it today. Each time I watch it I gain new insights to these important concepts regarding Azure Storage Accounts. Thank you for making this knowledge available for the tech community!!

Thanks a lot! This is by far one of if not the best video and explanation i've seen on this topic so far.

Great video same as always. After 3 years, it's the best you can find on KZfaq.

The exaplanation here is even better than the one on the e-learning platforms ! It's far better : ) thank you!

followed 2 courses on udemy, watched lot of videos on youtube, your aptitude to synthesis is brilliant; you are the best one

Thank you for another instructive video John, I am enjoying watching them. Keep up the good work and I hope that you & your family are staying safe & healthy.

This is hands down the best video I've seen on this subject.

Excellent Video! I just learned about your channel today. Helped me a lot already! I love your teaching method of explaining the abstract logic and going into detail after that! Perfect lesson. Thanks!

I was cross eyed after reading the documents. However, you my friend, made it all too easy! Thank you so much, enjoying all of your material.

Big Thanks ! There were so many access options and so many trash guides that suggest you just use Access Key everywhere. And only there i could find very clear and explanation of all methods.

Thank you John for such an insightful session, you are amazing in these 360 sessions.

Awesome explanation! thanks for covering the key concepts in such a simpler and easily understood way :-)

Amazing work, John, thank you.

Nice one John 👍

Great video John, thanks for sharing

Very Useful for my today's learning John Mr Dogs ;)

What an explanation! Thank you really!

Great tutorial. I was trying to use azcopy to copy data from my local machine (mac) to a container in Data Lake Gen2 but the authentication kept failing. Didnt find much help on the support forums or microsoft doc. John has done a great job explaining the authentication concepts and how to use SAS. Thank you John.

This is so useful, well explained. thank you so much for making this kind of videos. :)

Another awesome video, just catching up on them little nuggets of information. Thank you Sir.

Very well explained. After going through a few pluralsight courses on Azure Storage, I find this more explanatory. I feel the whiteboarding steals the show. John, can you please also share the whiteboard content to review more often? Thanks.

John you rock great content sir.

Thank you for a very clear and comprehensive video!

Great explanation ! Really breaks it down well. Thanks 🙏🏽 ( just as an aside - the red timer is a little distracting).

Great insights John..Thanks.

Thank you, it was very useful for me!

hey john thanks for another great video TY sir! . just one thing need to clarify.. the user delegation as mentioned happens automagically when storage access is switched to Azure AD, correct?

thanks John, it was a nice refresher. Could you please also make video on File Share and it's permission as it has grown alot since basic file share. File Share with Key File Share With Azure AD RBAC. (Azure AD domain Service and NTFS permission) File Share with Azure File sync ( also Ntfs) File Share with Active Directory Domain Join (NTFS)

Take my gratitude..!!

Great video! Very informative. I have a requirement to manage access via Azure AD and this explained that nicely. If I have users that are just connecting to download data (Azure AD Only, no on-prem AD or Azure AD DS) is the Azure Storage Explorer their best (or only) option for downloading data that needs to be secured? The SAS links seem nice, but prefer to enforce the MFA for users accessing the data.

Thank you so much I learned a lot, but think I'm still a bit confused just not as bad as before: for the SAS and access keys, these are done at the account level where you can define access down to objects... and for specific assignment at the container\folder\object you can use access policy. In all cases you can assign access and permission using IAM?? do I have it correct?? is there a access configuration that would override/cancel out other access/ permissions?

Very useful , Thanks

Hello, John. How are you? I have a question and I would be very happy if you help me. Why, when I switch to Azure AD User Account, at the container level, I get the message that I don't have permissions to list the data, even being an owner at the Management Group level? Thank you!

How to restrict the users from copying data from blob container or file share.. they should be able to read and write but should not copy the data out of the storage to any physical system using any tool..

please disable the seconds and minutes in the clock :D

Hi John - good session, just to confirm while user is logged in (to Storage Explorer) and using SAS key, if Administrator change Key1/2 that user will still have access to image until he/she logs out - right?

Hi John..Can you please similar kind of videos in AzureDevOps..Please

hi I have connected a pi camera to store the images to storage account it is storing perfectly with one of my wifi and it is not storing with other wifi or mobile hotspot what would be the problem Please try to help.

if you generate a new access key does it stop working for any SAS that was created using that key in the past. Sorry if you mentioned that in the video. Great videos btw.

Hello John, I am watching so many videos but I am still not sure how to we utilize azure file shares with SAS. Lets say I have a server where I want to mount File Share, i know i can use access keys to mount but if i have generated SAS token, then Where do I use it for mounting file share? What is the benefit of generating SAS token for Azure file? I have seen we use storage explorer to access storage account and we configure SAS token there but usually we use SAS token for complete storage account and not particularly for single blob container or file share. It bugging me and I had this question in AZ104 exam and wanted to know what could be the answer for it. I had just guessed the answer for below Question ******************************************************************************** You need to use AzCopy to copy data to the blob storage and file storage in storage1. Which authentication method should you use for each type of storage? ********************************************************************************** Options: AzureAD, SAS, Access Keys. (multiple choice) - For Blob Storage Options: AzureAD, SAS, Access Keys. (multiple choice) - For File Storage ********************************************************************************** And I guessed, AzureAD+SAS for blob and SAS for file storage. ****************************** So why cannot we use access keys for azcopy for copy to file storage? I have raised multiple questions apologies for that. its just I am completely confused. I think my problem is I am not known to use cases of azure file shares with SAS.

Hi John, Am I correct dat you cannot generate a container SAS from the portal? It can be done from storage explorer but I don't have the option in the portal.

Can you do all those things programmatically? So add an applicationuser permission to only data in this container?